Forums » Interstage BPM Knowledgebase Articles

• C.Y. Chen

  

  • 33 posts
   

  February 13, 2013 11:43:40 AM PST

  Goal:  How to Evade Password Policy Imposed by Interstage BPM Console

   

  Fact: Interstage BPM (Business Process Management) Version 11.2

   

  Fact: Interstage BPM (Business Process Management) Version 11.2a

   

  Fact: Interstage BPM (Business Process Management) Version 11.2.1

   

  Fact: Local Store as Directory Service in BPM

   

  Fact: Interstage BPM Console Users Management

   

  Symptom: Fail to set password not meeting password policy via Interstage BPM Console for users residing in local store.

   

  Fix:

  Interstage BPM Console imposes a policy for user password such that the password must be at least 8 characters long and contains a number.

   

  This knowledge base article shows how to create or reset user password without conforming to the password policy that is ONLY imposed by Interstage BPM Console.

   

  Step 1: encrypt your chosen new password by using the utility, typically found in {Fujitsu home}\client\samples\configuration\EncryptPassword.bat

  Example: EcnryptPassword.bat –e “mynewpass”  where mynewpass is the new password.

   

  Step 2:  Connect to Interstage BPM DB Schema.

  Update the record in USERS table.  Issue the following sql; for example,
  UPDATE USERS
  SET PASSWORD=’new encrypted password from step 1’
  WHERE USERID=’abc’ AND TENANTID=’2’
  
  This will update the password field for userid=abc and tenantid=2

   

  Note: 

  For developers who use the model API, please refer to com.fujitsu.iflow.model.workflow.WFAdminSession.resetPassword() that does not enforce the password policy as seen in console.  Alternatively, developers can reset the password by calling the aforedmentioned Model API.

  
  This post was edited by C.Y. Chen at February 13, 2013 11:54:29 AM PST